$ rpki-client -vvf rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft File: UyQGWmE9LRB4F5xiFjcczGp3UHo.mft (raw, json) Hash identifier: pd1loGuRegC8PNjx2+A3OBDI1bS5H/NLDgfAsI+2yQY= Subject key identifier: E8:2C:BB:7A:6B:46:79:39:A8:27:16:F3:49:B7:4F:E2:31:FD:B2:FD Authority key identifier: 53:24:06:5A:61:3D:2D:10:78:17:9C:62:16:37:1C:CC:6A:77:50:7A Certificate issuer: /CN=A9158EC4/serialNumber=5324065A613D2D1078179C6216371CCC6A77507A Certificate serial: 0138 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft Manifest number: 0133 Signing time: Mon 03 Nov 2025 04:32:56 +0000 Manifest this update: Mon 03 Nov 2025 04:32:55 +0000 Manifest next update: Mon 10 Nov 2025 04:32:55 +0000 Files and hashes: 1: UyQGWmE9LRB4F5xiFjcczGp3UHo.crl (hash: XjmtbNeZz3sjidpIznmALz4qkBRlL0q8Wck+t0Jt1WY=) 2: 2805F2D6E5B511EEB34EF35AC4F9AE02.roa (hash: 0mdd1hPCY77vgsAR82vZE3qWvhrgXofs3UYJMwrKnGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.crl rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:32:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158EC4, serialNumber=5324065A613D2D1078179C6216371CCC6A77507A Validity Not Before: Nov 3 04:32:55 2025 GMT Not After : Nov 10 04:32:55 2025 GMT Subject: CN=69083078-9cfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:aa:6f:2a:11:58:d9:30:73:0d:1c:39:ea:08: 7a:b3:88:d5:d8:54:a2:66:f4:43:08:be:b3:8d:b6: 07:9d:6b:cd:0a:d2:be:b3:55:91:6c:27:60:d2:76: e1:14:cf:1b:e2:87:c9:fb:8c:99:cf:dc:39:b0:f1: 77:fd:92:ed:9f:e5:a3:43:dd:f9:b7:b4:17:0d:3d: 9b:52:01:6a:82:d8:84:0b:8b:a8:69:d9:cd:8c:93: 5f:07:82:a0:6f:da:ad:7f:52:10:f9:e4:f5:39:48: 2d:15:7f:d1:ba:a1:c8:78:d1:eb:b4:4a:25:23:fb: e9:31:92:4a:0f:77:19:ec:99:f3:e7:de:ea:27:5c: cc:62:8e:15:65:25:f7:fb:8f:3e:a0:f1:ef:70:1d: d0:c2:ed:b6:14:11:4c:49:a4:e2:03:d9:f3:f4:06: 88:92:c7:00:2d:1e:49:3f:c2:19:c8:bc:4c:8e:95: 65:58:43:0e:2d:49:44:76:f5:57:5d:83:a3:a2:9b: f8:57:95:fa:4e:5c:54:21:84:8d:db:b3:84:39:cd: ef:27:7c:dc:39:79:61:a0:e1:ee:6f:0d:a0:11:63: d0:90:04:d2:6f:d7:cd:19:53:59:d6:86:4c:ba:7c: cc:9d:d7:a0:6a:65:e0:94:b1:bf:72:15:67:da:0c: f9:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:2C:BB:7A:6B:46:79:39:A8:27:16:F3:49:B7:4F:E2:31:FD:B2:FD X509v3 Authority Key Identifier: keyid:53:24:06:5A:61:3D:2D:10:78:17:9C:62:16:37:1C:CC:6A:77:50:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:4b:0e:eb:57:fd:df:c5:a2:ef:a2:8e:de:3b:f7:29:b8:24: ea:1e:f9:71:2b:5d:1a:42:cf:d1:4e:38:0b:af:9f:16:be:b1: e1:de:fb:62:70:38:94:48:f3:23:8a:e7:7b:71:1b:3b:1b:1c: f7:e3:27:eb:4d:40:5f:50:b7:51:ec:53:bd:31:95:d1:26:b5: a3:e6:02:a5:45:63:ae:26:f6:a3:43:c1:81:df:0b:5e:aa:bc: 48:10:13:35:bc:df:b4:33:1f:6a:ad:34:66:c4:ba:b3:5c:b4: 21:cb:41:70:55:84:47:86:6f:13:6d:18:93:1d:d3:1f:d4:4a: eb:25:eb:5a:95:5b:52:d8:c9:45:29:37:51:15:b6:2f:28:de: fe:33:bf:b7:73:fb:76:29:62:28:79:84:01:96:a9:d7:ff:dd: 51:ea:a0:0e:06:44:a2:4d:50:18:ca:cf:a8:5b:3d:e6:96:04: ce:b4:66:fb:10:8a:45:b7:ac:6d:ac:0b:cb:56:35:d6:2e:38: bc:92:28:83:14:1d:8e:13:17:ba:a1:1b:72:79:7e:f6:c1:32: 79:88:25:c0:6d:9b:fa:1f:c6:4c:66:91:f2:38:38:f7:bc:c4: 2e:0b:84:28:37:76:ab:d2:fc:60:55:4e:e2:a4:d1:29:cb:7f: be:22:23:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFQzQxMTAvBgNVBAUTKDUzMjQwNjVBNjEzRDJEMTA3ODE3OUM2MjE2MzcxQ0ND NkE3NzUwN0EwHhcNMjUxMTAzMDQzMjU1WhcNMjUxMTEwMDQzMjU1WjAYMRYwFAYD VQQDEw02OTA4MzA3OC05Y2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqpvKhFY2TBzDRw56gh6s4jV2FSiZvRDCL6zjbYHnWvNCtK+s1WRbCdg0nbh FM8b4ofJ+4yZz9w5sPF3/ZLtn+WjQ935t7QXDT2bUgFqgtiEC4uoadnNjJNfB4Kg b9qtf1IQ+eT1OUgtFX/RuqHIeNHrtEolI/vpMZJKD3cZ7Jnz597qJ1zMYo4VZSX3 +48+oPHvcB3Qwu22FBFMSaTiA9nz9AaIkscALR5JP8IZyLxMjpVlWEMOLUlEdvVX XYOjopv4V5X6TlxUIYSN27OEOc3vJ3zcOXlhoOHubw2gEWPQkATSb9fNGVNZ1oZM unzMndegamXglLG/chVn2gz5wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOgsu3pr Rnk5qCcW80m3T+Ix/bL9MB8GA1UdIwQYMBaAFFMkBlphPS0QeBecYhY3HMxqd1B6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEVDNC80NTA2NDc5MEU1 QjExMUVFOUUzNUMzMzNDNEY5QUUwMi9VeVFHV21FOUxSQjRGNXhpRmpjY3pHcDNV SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5UUdXbUU5TFJCNEY1eGlGamNjekdwM1VIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEVDNC80NTA2NDc5MEU1QjExMUVFOUUzNUMzMzNDNEY5QUUwMi9VeVFHV21FOUxS QjRGNXhpRmpjY3pHcDNVSG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBySw7rV/3fxaLvoo7eO/cpuCTqHvlxK10aQs/RTjgLr58WvrHh3vti cDiUSPMjiud7cRs7Gxz34yfrTUBfULdR7FO9MZXRJrWj5gKlRWOuJvajQ8GB3wte qrxIEBM1vN+0Mx9qrTRmxLqzXLQhy0FwVYRHhm8TbRiTHdMf1ErrJetalVtS2MlF KTdRFbYvKN7+M7+3c/t2KWIoeYQBlqnX/91R6qAOBkSiTVAYys+oWz3mlgTOtGb7 EIpFt6xtrAvLVjXWLji8kiiDFB2OExe6oRtyeX72wTJ5iCXAbZv6H8ZMZpHyODj3 vMQuC4QoN3ar0vxgVU7ipNEpy3++IiOc -----END CERTIFICATE-----Generated at Tue Nov 4 16:04:47 2025 by rpki-client